The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::vm::Machine::Code::Code function in browsers Firefox ESR and Firefox, as well as in the Graphite 2 rendering software, is caused by a buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to cause service interruptions or other...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::Slot::getAttr function Slot.cpp in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, arises due to buffer overflows. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects through a...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable4NextCodepoint in browsers Firefox ESR and Firefox, as well as in the Graphite rendering software, is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects through the...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable12Lookup function in browsers Firefox ESR and Firefox, as well as in the Graphite rendering software. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects through the use of a specially crafte...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::GlyphCache::glyph function in Firefox ESR and Firefox browsers is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects using a specially created Graphite smart font...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::GlyphCache::Loader::Loader function in Firefox ESR and Firefox browsers, a component of the Graphite 2 rendering software, arises due to buffer overflow. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects by usin...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::Slot::getAttr function Slot.cpp in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, arises due to buffer overflows. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects through a...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the CachedCmap.cpp component in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, arises due to buffer overflows. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects through the use of a speciall...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::FileFace::gettablefn function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, means that memory is not initialized for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::Slot::setAttr function in Firefox ESR and Firefox browsers, as well as in the Graphite 2 rendering software, is caused by a buffer overflow in the dynamic memory. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effect...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable12Lookup function TtfUtil.cpp for Firefox ESR and Firefox browsers can be exploited due to buffer overflows. Exploiting this vulnerability may allow an attacker to cause service interruptions or other effects by using a specially crafted...

The vulnerability of the Graphite 2 rendering software, as well as the Firefox and Firefox ESR browsers, allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Machine::Code::decoder::analysis::setref function in the Graphite rendering software, used by browsers Firefox and Firefox ESR, arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure memor...

The vulnerabilities of Firefox ESR and Firefox, the rendering software Graphite 2, allow attackers to induce service failures or exert other effects.

The vulnerability of the graphite2::TtfUtil::CmapSubtable12NextCodepoint function in browsers Firefox ESR and Firefox, as well as in the Graphite 2 rendering software, is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to cause service interruptions or other effects...

The vulnerability of the Graphite 2 rendering software allows a perpetrator to trigger a service failure or cause other adverse effects.

The vulnerability of the graphite2::TtfUtil::GetTableInfo function in the Graphite rendering software does not initialize memory for special data structures. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects using a specially created Graphite sma...

The vulnerability of the Graphite 2 rendering software, as well as the Firefox and Firefox ESR browsers, allows a perpetrator to trigger a service failure or exert other effects.

The vulnerability of the setAttr function in the Graphite rendering software for browsers Firefox and Firefox ESR is caused by buffer overflow. Exploiting this vulnerability allows an attacker to cause service interruptions or other effects such as memory corruption through a specially created...

openSUSE Security Update : MozillaThunderbird (openSUSE-2016-395)

MozillaThunderbird was updated to 38.7.0 to fix the following issues : - Update to Thunderbird 38.7.0 boo969894 - MFSA 2015-81/CVE-2015-4477 bmo1179484 Use-after-free in MediaStream playback - MFSA 2015-136/CVE-2015-7207 bmo1185256 Same-origin policy violation using performance.getEntries and...

Security update for MozillaThunderbird (important)

MozillaThunderbird was updated to 38.7.0 to fix the following issues: Update to Thunderbird 38.7.0 boo969894 MFSA 2015-81/CVE-2015-4477 bmo1179484 Use-after-free in MediaStream playback MFSA 2015-136/CVE-2015-7207 bmo1185256 Same-origin policy violation using performance.getEntries and history...

Debian DSA-3523-1 : iceweasel - security update

This update disables the Graphite font shaping library in Iceweasel, Debian's version of the Mozilla Firefox web browser. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-3523. The text...

SUSE SLES10 Security Update : MozillaFirefox (SUSE-SU-2016:0820-1)

Mozilla Firefox was updated to 38.7.0 ESR, fixing the following security issues : MFSA 2016-16/CVE-2016-1952/CVE-2016-1953: Miscellaneous memory safety hazards rv:45.0 / rv:38.7 MFSA 2016-17/CVE-2016-1954: Local file overwriting and potential privilege escalation through CSP reports MFSA...

[SECURITY] [DSA 3523-1] iceweasel security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3523-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 20, 2016 https://www.debian.org/security/faq -...